Ezyhelpdesk Search Function search_string Variable SQL Injection

2005-11-23T13:41:53
ID OSVDB:21076
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2005-11-23T13:41:53

Description

Vulnerability Description

Ezyhelpdesk contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the search engine not properly sanitizing user-supplied input to the 'search_string' variable. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Ezyhelpdesk contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the search engine not properly sanitizing user-supplied input to the 'search_string' variable. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.

References:

Vendor URL: http://www.ezyhelpdesk.com Secunia Advisory ID:17696 Related OSVDB ID: 21075 Other Advisory URL: http://pridels.blogspot.com/2005/11/ezyhelpdesk-multiple-sql-inj.html FrSIRT Advisory: ADV-2005-2560 CVE-2005-3826 Bugtraq ID: 15553